9 matches found
Symantec Endpoint Protection Manager - Remote Command Execution Exploit
No description provided by source. import argparse import httplib Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor Homepage:...
Symantec Endpoint Protection Manager - Remote Command Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/exploit/powershell' class Metasploit3 'Symantec Endpoint Protection Manager Remote Command Execution', 'Description' = %q This module...
CVE-2013-5014
creationtimestamp| type| source ---|---|--- 2014-02-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31853 2014-02-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31917 2018-05-29 15:50:33+00:00| seen|...
Symantec Endpoint Protection Manager 11.0/12.0/12.1 - Remote Command Execution
import argparse import httplib """ Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor Homepage: http://www.symantec.com/endpoint-protection Version: 11.0, 12.0, 12...
Symantec Endpoint Protection Manager Remote Command Execution
import argparse import httplib """ Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor Homepage: http://www.symantec.com/endpoint-protection Version: 11.0, 12.0, 12...
Symantec Endpoint Protection Manager 11.012.012.1 - Remote Command Execution
Symantec Endpoint Protection Manager 11.012.012.1 - Remote Command Execution import argparse import httplib """ Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor...
Symantec Endpoint Protection Manager < 11.0 RU7-MP4a / 12.1 RU4a Multiple Vulnerabilities (SYM14-004)
The version of Symantec Endpoint Protection Manager SEPM running on the remote host is either 11.x prior to 11.0 RU7-MP4a or 12.x prior to 12.1 RU4a. It is, therefore, affected by multiple vulnerabilities: - SEPM is affected by an XML external entity injection vulnerability due to a failure to...
CVE-2013-5014
CVE-2013-5014 is an XXE vulnerability in the Symantec Endpoint Protection Manager (SEPM) management console. The flaw lets remote attackers read arbitrary files by sending XML data containing an external entity declaration. Affected are SEPM versions: 11.0 before 11.0.7405.1424 and 12.1 before 12...
Symantec Endpoint Protection Manager Vulnerabilities
SUMMARY The management console for Symantec Endpoint Protection Manager does not properly handle external XML data, which could potentially allow unauthorized access to restricted server-side data and console management functionality. The management console for Symantec Endpoint Protection Manage...